mirror of
https://github.com/semaphoreui/semaphore.git
synced 2025-01-20 23:39:56 +01:00
b4cab16fda
- Fixes #94 - Fixes admin permissions (needed to manipulate users)
195 lines
5.5 KiB
Go
195 lines
5.5 KiB
Go
package api
|
|
|
|
import (
|
|
"strings"
|
|
|
|
"github.com/ansible-semaphore/semaphore/api/projects"
|
|
"github.com/ansible-semaphore/semaphore/api/sockets"
|
|
"github.com/ansible-semaphore/semaphore/api/tasks"
|
|
"github.com/ansible-semaphore/semaphore/util"
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/russross/blackfriday"
|
|
)
|
|
|
|
// Declare all routes
|
|
func Route(r *gin.Engine) {
|
|
r.GET("/api/ping", func(c *gin.Context) {
|
|
c.String(200, "PONG")
|
|
})
|
|
|
|
r.NoRoute(servePublic)
|
|
|
|
// set up the namespace
|
|
api := r.Group("/api")
|
|
|
|
func(api *gin.RouterGroup) {
|
|
api.POST("/login", login)
|
|
api.POST("/logout", logout)
|
|
}(api.Group("/auth"))
|
|
|
|
api.Use(authentication)
|
|
|
|
api.GET("/ws", sockets.Handler)
|
|
|
|
api.GET("/info", getSystemInfo)
|
|
api.GET("/upgrade", checkUpgrade)
|
|
api.POST("/upgrade", doUpgrade)
|
|
|
|
func(api *gin.RouterGroup) {
|
|
api.GET("", getUser)
|
|
// api.PUT("/user", misc.UpdateUser)
|
|
|
|
api.GET("/tokens", getAPITokens)
|
|
api.POST("/tokens", createAPIToken)
|
|
api.DELETE("/tokens/:token_id", expireAPIToken)
|
|
}(api.Group("/user"))
|
|
|
|
api.GET("/projects", projects.GetProjects)
|
|
api.POST("/projects", projects.AddProject)
|
|
api.GET("/events", getEvents)
|
|
|
|
api.GET("/users", getUsers)
|
|
api.POST("/users", addUser)
|
|
api.GET("/users/:user_id", getUserMiddleware, getUser)
|
|
api.PUT("/users/:user_id", getUserMiddleware, updateUser)
|
|
api.POST("/users/:user_id/password", getUserMiddleware, updateUserPassword)
|
|
api.DELETE("/users/:user_id", getUserMiddleware, deleteUser)
|
|
|
|
func(api *gin.RouterGroup) {
|
|
api.Use(projects.ProjectMiddleware)
|
|
|
|
api.GET("", projects.GetProject)
|
|
api.PUT("", projects.MustBeAdmin, projects.UpdateProject)
|
|
api.DELETE("", projects.MustBeAdmin, projects.DeleteProject)
|
|
|
|
api.GET("/events", getEvents)
|
|
|
|
api.GET("/users", projects.GetUsers)
|
|
api.POST("/users", projects.MustBeAdmin, projects.AddUser)
|
|
api.POST("/users/:user_id/admin", projects.MustBeAdmin, projects.UserMiddleware, projects.MakeUserAdmin)
|
|
api.DELETE("/users/:user_id/admin", projects.MustBeAdmin, projects.UserMiddleware, projects.MakeUserAdmin)
|
|
api.DELETE("/users/:user_id", projects.MustBeAdmin, projects.UserMiddleware, projects.RemoveUser)
|
|
|
|
api.GET("/keys", projects.GetKeys)
|
|
api.POST("/keys", projects.AddKey)
|
|
api.PUT("/keys/:key_id", projects.KeyMiddleware, projects.UpdateKey)
|
|
api.DELETE("/keys/:key_id", projects.KeyMiddleware, projects.RemoveKey)
|
|
|
|
api.GET("/repositories", projects.GetRepositories)
|
|
api.POST("/repositories", projects.AddRepository)
|
|
api.PUT("/repositories/:repository_id", projects.RepositoryMiddleware, projects.UpdateRepository)
|
|
api.DELETE("/repositories/:repository_id", projects.RepositoryMiddleware, projects.RemoveRepository)
|
|
|
|
api.GET("/inventory", projects.GetInventory)
|
|
api.POST("/inventory", projects.AddInventory)
|
|
api.PUT("/inventory/:inventory_id", projects.InventoryMiddleware, projects.UpdateInventory)
|
|
api.DELETE("/inventory/:inventory_id", projects.InventoryMiddleware, projects.RemoveInventory)
|
|
|
|
api.GET("/environment", projects.GetEnvironment)
|
|
api.POST("/environment", projects.AddEnvironment)
|
|
api.PUT("/environment/:environment_id", projects.EnvironmentMiddleware, projects.UpdateEnvironment)
|
|
api.DELETE("/environment/:environment_id", projects.EnvironmentMiddleware, projects.RemoveEnvironment)
|
|
|
|
api.GET("/templates", projects.GetTemplates)
|
|
api.POST("/templates", projects.AddTemplate)
|
|
api.PUT("/templates/:template_id", projects.TemplatesMiddleware, projects.UpdateTemplate)
|
|
api.DELETE("/templates/:template_id", projects.TemplatesMiddleware, projects.RemoveTemplate)
|
|
|
|
api.GET("/tasks", tasks.GetAll)
|
|
api.POST("/tasks", tasks.AddTask)
|
|
api.GET("/tasks/:task_id/output", tasks.GetTaskMiddleware, tasks.GetTaskOutput)
|
|
api.DELETE("/tasks/:task_id", tasks.GetTaskMiddleware, tasks.RemoveTask)
|
|
}(api.Group("/project/:project_id"))
|
|
}
|
|
|
|
func servePublic(c *gin.Context) {
|
|
path := c.Request.URL.Path
|
|
|
|
if strings.HasPrefix(path, "/api") {
|
|
c.Next()
|
|
return
|
|
}
|
|
|
|
if !strings.HasPrefix(path, "/public") {
|
|
if len(strings.Split(path, ".")) > 1 {
|
|
c.AbortWithStatus(404)
|
|
return
|
|
}
|
|
|
|
path = "/public/html/index.html"
|
|
}
|
|
|
|
path = strings.Replace(path, "/", "", 1)
|
|
split := strings.Split(path, ".")
|
|
suffix := split[len(split)-1]
|
|
|
|
res, err := util.Asset(path)
|
|
if err != nil {
|
|
c.Next()
|
|
return
|
|
}
|
|
|
|
contentType := "text/plain"
|
|
switch suffix {
|
|
case "png":
|
|
contentType = "image/png"
|
|
case "jpg", "jpeg":
|
|
contentType = "image/jpeg"
|
|
case "gif":
|
|
contentType = "image/gif"
|
|
case "js":
|
|
contentType = "application/javascript"
|
|
case "css":
|
|
contentType = "text/css"
|
|
case "woff":
|
|
contentType = "application/x-font-woff"
|
|
case "ttf":
|
|
contentType = "application/x-font-ttf"
|
|
case "otf":
|
|
contentType = "application/x-font-otf"
|
|
case "html":
|
|
contentType = "text/html"
|
|
}
|
|
|
|
c.Writer.Header().Set("content-type", contentType)
|
|
c.String(200, string(res))
|
|
}
|
|
|
|
func getSystemInfo(c *gin.Context) {
|
|
body := map[string]interface{}{
|
|
"version": util.Version,
|
|
"update": util.UpdateAvailable,
|
|
"config": map[string]string{
|
|
"dbHost": util.Config.MySQL.Hostname,
|
|
"dbName": util.Config.MySQL.DbName,
|
|
"dbUser": util.Config.MySQL.Username,
|
|
"path": util.Config.TmpPath,
|
|
"cmdPath": util.FindSemaphore(),
|
|
},
|
|
}
|
|
|
|
if util.UpdateAvailable != nil {
|
|
body["updateBody"] = string(blackfriday.MarkdownCommon([]byte(*util.UpdateAvailable.Body)))
|
|
}
|
|
|
|
c.JSON(200, body)
|
|
}
|
|
|
|
func checkUpgrade(c *gin.Context) {
|
|
if err := util.CheckUpdate(util.Version); err != nil {
|
|
c.JSON(500, err)
|
|
return
|
|
}
|
|
|
|
if util.UpdateAvailable != nil {
|
|
getSystemInfo(c)
|
|
return
|
|
}
|
|
|
|
c.AbortWithStatus(204)
|
|
}
|
|
|
|
func doUpgrade(c *gin.Context) {
|
|
util.DoUpgrade(util.Version)
|
|
}
|